Privacy statement

1. General Note

The company responsible for the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection regulations, is:

BD Technologies AG

2. Processing of Personal Data

A. General Information on the Processing of Personal Data:

By using our website, the user declares consent to the collection and processing of data in accordance with the following provisions.

B. Data Collection for Website Access (Server Log Files)

As soon as the user accesses our website without registration, the internet browser used for this purpose automatically transmits data that is stored in server log files. The following data is transmitted and stored:

  • Date and time of access to our website.
  • Information about the type and version of the internet browser used.
  • User's IP address and related geographical data
  • Operating system used by the user.
  • Referring URL.
  • Searched domain name.

The legal basis for data processing is Article 6, paragraph 1, sentence 1, section f of the GDPR.

C. Registration on this Website

When registering on our website, users provide personal data (name, email address, password, gender, date of birth, etc.) to use our services. The data is entered into a form provided for this purpose, transmitted to us, and stored. It is used exclusively for the purpose of using the respective services. During the registration process, the user's consent to the processing of this data is obtained.

The data recorded during registration will be retained for as long as the user is active and registered on our website. In case of deletion of the created account, the user's data will be deleted. Legal retention periods remain unaffected.

Sign-in via third-party operators

When registering on our site, users can choose to sign in via Facebook, Apple, Microsoft or Google tools. These tools allow any holder of an account with one of these operators to use his or her identification data to create an account on our website. When a user click on the "Continue as ...." button on the registration form, the user gives the operator his consent for the transfer of the data necessary for the creation of his account. For more information, the user can consult the relevant operator’s privacy policy.

D. Conversation and consultant’s obligation

We will share part of the provided information with our consultants who respond to client messages. This information includes the user's name, date of birth, gender, and profile picture. We may also store certain private information shared in conversations as logs. These logs are securely maintained and made available to our dedicated team of consultants. By sharing and retaining this information, we ensure that our consultants have access to relevant context and historical data to deliver personalized and efficient assistance.

Any Consultant offering its services on our platform undertakes to comply with its obligations under the applicable regulations for the protection of personal data as it results in particular from the European Regulation on the protection of personal data.

The Consultant agrees not to make any use of the Personal Data relating to the User for purposes other than the strict needs of the execution of its Service. Similarly, the Consultant is bound not to communicate any personal data to a third party.

E. Comments/Reviews

Users can write comments/reviews on our website. In order to leave a review, clients must be logged in on their account. All data related to comments/reviews, will be stored on the user account in our database.

F. Data shared with service providers

Customer support:

There is a contact form and an email address available on our website to facilitate electronic communication with the users. The information transmitted through the contact form, including contact details, is stored for the sole purpose of processing user inquiries or any subsequent questions. For effective customer service, we will share this data, encompassing the user's name, email address, and message content, with our partner, Ladesk, who serves as our designated customer service provider. Ladesk is bound by the same privacy and data protection standards as our platform.

The data transmitted via the contact form will only be deleted if the user requests it, if consent to storage is revoked, or if it is no longer necessary to retain the data.

Payment

Payment data is transmitted and managed by our partners for payment processing. It is encrypted and not stored unless specifically agreed by the user via the card-on-file option. This additional layer of security ensures that your payment information remains protected, and only retained if you choose to utilize the convenience of storing your card details for future transactions.

3. Withdrawing consent

Revocation of consent already given by the user is possible at any time. If a user decides to delete their profile or requests the deletion of their personal data, we will promptly delete their information from our systems, except for any data that we are required to retain by law or for legitimate business purposes. To request the deletion of their data, users should send an email to debra@mediumastro.co.uk. In the email subject, please indicate "Request for Data Deletion" to ensure prompt identification and processing of the request, in accordance with GDPR regulations.The legality of data processing that has already occurred is not affected by the revocation.

4. Data Subject Rights

Users have the right to obtain information about the personal data stored about them, its origin, recipients, and the purpose of storage, at any time. Users also have the right to rectify, block, or delete this data. Please note that withdrawing your consent does not affect the legality of any data processing that has already occurred.

Requests for information, as well as requests for rectification, blocking, or deletion of data, can be made by contacting us using the contact information provided at the end of this document.

5. Data Retention Period

The personal data collected and processed through our website will be retained for as long as the user is registered on our website and actively using our services. This means that as long as the user maintains an active account and continues to engage with our platform, we will retain their personal data. However, all messages will be automatically archived after 30 days. After 180 days of inactivity, the user profile will get automatically deactivated (but not deleted). All user’s data will only be completely erased after a period of 2 years of inactivity.

Certain personal data, such as server log files and IP addresses, may be retained for a limited period of time in order to comply with legal obligations, protect our rights, resolve disputes, or enforce our terms and conditions. If you have any questions regarding the retention period of your specific personal data, please contact us using the contact information provided in this policy agreement.

We are committed to ensuring that personal data is not kept longer than necessary for the purposes for which it was collected. Therefore, we regularly review our data retention practices to ensure compliance with applicable data protection laws and regulations.

6. Legal Basis for Data Processing

The legal basis for processing your data on our platform is your explicit consent, which is obtained when you sign up and agree to our privacy policy. By providing your consent, you acknowledge that we will process your personal data in accordance with this policy and for the purposes outlined herein. We are committed to maintaining the confidentiality and security of your data while respecting your rights as a user. If you have any concerns or wish to withdraw your consent, please contact us using the contact information provided in this policy agreement.

7. Automated Decision-Making

In order to enhance the user experience on our spiritual chat platform, we may employ automated message sending based on client profile data, which includes information such as age and gender. These automated messages are designed to provide personalised content and recommendations that align with your interests and preferences. However, these automated messages do not involve any decision-making processes that could have legal or similarly significant effects on you.

8. International Data Transfers

Under the General Data Protection Regulation (GDPR), the transfer of personal data to countries outside the European Economic Area (EEA) requires appropriate safeguards to ensure the protection of individuals' privacy rights. As a spiritual chat platform, we understand the importance of maintaining the privacy and security of your personal information, including your client messages.

When your messages are answered by consultants located in countries outside the EEA, we implement the necessary measures to ensure that your data is adequately protected. These measures may include:

Standard Contractual Clauses: We have established legally binding agreements, known as standard contractual clauses, with the operators in the recipient countries. These clauses contain provisions that safeguard your data and maintain a consistent level of data protection as required by the GDPR.

Data Protection Measures: We implement technical and organizational measures to secure your personal data during international transfers. These measures include encryption, access controls, and regular checks to ensure compliance with GDPR requirements.

By implementing these safeguards, we aim to ensure that your personal data is handled in accordance with the high data protection standards mandated by the GDPR. If you have any questions or concerns about international data transfers or the measures we have in place, please do not hesitate to contact us using the information provided in this privacy statement.

9. Cookies

Our website uses cookies to enhance user experience. Cookies are small text files that are stored on the user's device. Most of the cookies we use are "session cookies," which are automatically deleted after the user's visit. Other cookies remain stored on the user's device until they are deleted by the user. These cookies allow us to recognize the user's browser on their next visit. For more information, please refer to our Cookies Policy available on this site.

10. Google Analytics

Our website uses Google Analytics, a web analytics service provided by Google LLC ("Google"). Google Analytics uses cookies to analyze website usage. The information generated by the cookies about the use of our website is usually transmitted to and stored by Google on servers in the United States.

In case of activated IP anonymization on this website, the IP address of users accessing the website will be shortened by Google within member states of the European Union or other parties to the Agreement on the European Economic Area before transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there. IP anonymization is active on this website.

Google will use this information on behalf of the website operator to evaluate the use of the website, compile reports on website activity, and provide other services relating to website activity and internet usage to the website operator.

Users can prevent the storage of cookies by configuring their browser settings accordingly. Furthermore, users can prevent the collection of data generated by the cookies and related to their use of the website (including their IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

11. Translator tools

Translator tools are used in certain circumstances to translate user messages, to message the user, and during incoming and outgoing support tickets. No messages are saved, texts are only used temporarily for the execution of the translation. The tool does not use any of your content for any purpose except to provide you with a translation service.

12. Advertisement and marketing

We leverage privacy-conscious tools like Google Ads, Google Remarketing, and Microsoft Bing to ensure the responsible use of data and safeguard user privacy.

Google Ads: This website utilizes Google Ads, a digital advertising platform provided by Google. Google Ads may collect certain information about your browsing activities on this site using cookies or similar technologies. This data is used to deliver targeted advertisements based on your interests and browsing history. To learn more about how Google Ads collects and processes your data, as well as your options to control personalized advertising, please refer to Google's Privacy Policy.

Google Remarketing: We employ Google Remarketing to advertise our products and services on various websites across the internet. This technology allows us to display tailored ads to users who have previously visited our website. Google Remarketing uses cookies to track your interactions and gather information about your browsing behavior. Rest assured, any data collected is used in accordance with our privacy policy and Google's privacy practices. You can adjust your ad personalization settings or opt-out of Google Remarketing by visiting Google's Ad Settings page.

Microsoft Bing: Our website may use Microsoft Bing, a search advertising tool provided by Microsoft. Microsoft Bing may collect certain information about your visit to our site through the use of cookies or similar technologies. This data is utilized to deliver relevant ads based on your preferences and interests. For more information on how Microsoft Bing collects and processes your data, as well as your choices regarding personalized advertising, please consult Microsoft's Privacy Statement.

Please note that while the website strives to ensure the privacy and security of the user's data, it has no control over the privacy practices of these third-party advertising tools. It is recommended for the user to review the respective privacy policies of Google Ads, Google Remarketing, and Microsoft Bing for a comprehensive understanding of their data collection and usage practices.

13. Data Security Measures

We implement appropriate technical and organizational measures to ensure the security of personal data. These measures are designed to prevent unauthorized access, disclosure, alteration, or destruction of personal data. We regularly review our security practices to ensure the ongoing integrity and confidentiality of the personal data we process.

SSL Encryption:

For security reasons and to protect the transmission of data, we use state-of-the-art encryption methods (e.g., SSL). This means that data transmitted via our website cannot be read by third parties. An encrypted connection can be recognized by the change in the browser's address line from "http://" to "https://" and by the display of a closed padlock or lock symbol.

14. Changes to the Privacy Policy

At our platform, we are committed to continuously enhancing the protection of our users' personal data. In line with this commitment, we may periodically update our privacy policy to reflect any changes in our practices or to align with legal requirements. These updates are made with the aim of ensuring the utmost security and privacy of our users' information. However, it is important to note that it is the responsibility of our users to regularly review and check the privacy policy for any modifications. By doing so, users can stay informed about how their data is being handled and understand any new rights or choices they may have. We encourage our users to remain vigilant and informed by reviewing the privacy policy periodically and contacting us if they have any questions or concerns.

Contact Information:

If you have any questions, concerns, or requests regarding your personal data or our data protection practices, please contact us using the following contact information:

BD Technologies AG

Email : debra@mediumastro.co.uk

We and our third-party partners store or access information on a device, such as cookies, and we process personal data, such as IP addresses or browsing data. We use this information for personalized ads and content, and audience insights, as well as to develop, analyze and improve products. You may consent to the processing of your personal data for the listed purposes below. Alternatively you can set your preferences before consenting or refuse to consent. Please note that some partners may process your personal data based on their legitimate business interest and do not ask for your consent. To exercise your right to object to processing based on legitimate interest please view our third-party partners list. Your preferences will apply only to this website. You can change your preferences at any time by re-entering this website or by visiting our privacy policy.

We store or access information on a device and process personal data for personalised ads and content, audience insights, and to develop, analyse and improve products. You may consent to the processing of your personal data for the listed purposes below or set your preferences before consenting. To exercise your right to object to processing on legitimate interest please view our third-party partners list.

These cookies are set to provide the service, application or resource requested. Without these cookies, your request cannot be properly delivered. They are usually set to manage actions made by you, such as requesting website visual elements, pages resources or due user login/logoff. We can also use these cookies to set up essential functionalities to guarantee the security and efficiency of the service requested, like authentication and load balancer request.

Our website collects, uses, and discloses personal data when using Sentry, a website error detection service provided by Sentry, located at 1501 Mariposa St #408, San Francisco, CA 94107, USA.

This policy applies to the use of Sentry on our website. By using our website and integrating Sentry, you consent to the practices described in this Privacy Policy.

Use of Personal Data: We use the personal data collected through Sentry (User IP addresses, browser information, and device details) for the following purposes:

  • Identifying and diagnosing errors on our website.
  • Monitoring and improving the performance and functionality of our website.
  • Enhancing the user experience and providing personalized content.
  • Investigating and resolving technical issues and security incidents.
  • Complying with legal obligations and protecting our rights.

Our website shares personal data with Amazon Simple Email Service (Amazon SES) for email delivery services. Please read this disclosure carefully to understand how your personal data may be shared with Amazon SES.

  1. Purpose of Data Sharing: We utilize Amazon SES, a third-party email delivery service, to send transactional and promotional emails to our users. This includes account-related notifications, updates, marketing communications, and other relevant information.
  2. Types of Data Shared: To enable the efficient delivery of emails, we may share the following types of personal data with Amazon SES:
    • Email addresses: To send emails to the intended recipients.
    • Names or display names: To personalize the email content.
    • Email content: Including the subject line, body, attachments, and any other relevant information.
  3. Legal Basis for Data Sharing: The legal basis for sharing personal data with Amazon SES may vary depending on your jurisdiction and the specific circumstances of data processing. Generally, we rely on your consent, legitimate interests, or the necessity of contract performance to share your personal data with Amazon SES.
  4. Data Processing Locations: Amazon SES is operated by Amazon Web Services and may process personal data in various locations, including Ireland and other countries. By utilizing their services, your personal data may be transferred to, stored, and processed in these locations. Amazon SES has implemented appropriate safeguards to protect personal data in accordance with applicable data protection laws.
  5. Data Security: We take reasonable technical and organizational measures to protect personal data shared with Amazon SES against unauthorized access, loss, or alteration. Amazon SES employs industry-standard security practices to safeguard your personal data. However, it is important to note that no data transmission or storage system is completely secure.
  6. Third-Party Privacy Policy: Please note that the data sharing practices of Amazon SES are governed by their privacy policy. We encourage you to review their privacy policy to understand how they handle personal data and ensure compliance with applicable data protection laws.
  7. Third-Party Data Controller: Amazon SES acts as an independent third-party data controller for the personal data shared with them. Any data processing performed by Amazon SES is subject to its own privacy policy and practices. We are not responsible for the privacy practices of Amazon SES.
  8. Data Retention: Personal data shared with Amazon SES is retained by them for as long as necessary to provide the email delivery services to us. Their data retention practices are governed by their privacy policy.
  9. Your Rights and Choices: As the data subject, you have certain rights regarding your personal data shared with Amazon SES. This may include the right to access, rectify, erase, restrict processing, and object to the processing of your personal data. Please refer to our main privacy policy to understand how to exercise these rights.

Our website shares personal data with Mailgun for email delivery services. Please read this disclosure carefully to understand how your personal data may be shared with Mailgun.

  1. Purpose of Data Sharing: We utilize Mailgun, a third-party email delivery service, to send transactional and promotional emails to our users. This includes account-related notifications, updates, marketing communications, and other relevant information.
  2. Types of Data Shared: To enable the efficient delivery of emails, we may share the following types of personal data with Mailgun:
    • Email addresses: To send emails to the intended recipients.
    • Names or display names: To personalize the email content.
    • Email content: Including the subject line, body, attachments, and any other relevant information.
  3. Legal Basis for Data Sharing: The legal basis for sharing personal data with Mailgun may vary depending on your jurisdiction and the specific circumstances of data processing. Generally, we rely on your consent, legitimate interests, or the necessity of contract performance to share your personal data with Mailgun.
  4. Data Processing Locations: Mailgun is a service provided by Mailgun Technologies, Inc., and may process personal data in various locations, including the United States and other countries. By utilizing their services, your personal data may be transferred to, stored, and processed in these locations. Mailgun has implemented appropriate safeguards to protect personal data in accordance with applicable data protection laws.
  5. Data Security: We take reasonable technical and organizational measures to protect personal data shared with Mailgun against unauthorized access, loss, or alteration. Mailgun employs industry-standard security practices to safeguard your personal data. However, it is important to note that no data transmission or storage system is completely secure.
  6. Third-Party Privacy Policy: Please note that the data sharing practices of Mailgun are governed by their privacy policy. We encourage you to review their privacy policy to understand how they handle personal data and ensure compliance with applicable data protection laws.
  7. Third-Party Data Controller: Mailgun acts as an independent third-party data controller for the personal data shared with them. Any data processing performed by Mailgun is subject to its own privacy policy and practices. We are not responsible for the privacy practices of Mailgun.
  8. Data Retention: Personal data shared with Mailgun is retained by them for as long as necessary to provide the email delivery services to us. Their data retention practices are governed by their privacy policy.
  9. Your Rights and Choices: As the data subject, you have certain rights regarding your personal data shared with Mailgun. This may include the right to access, rectify, erase, restrict processing, and object to the processing of your personal data. Please refer to our main privacy policy to understand how to exercise these rights.

Google Tag Manager delivers simple, reliable, easily integrated tag management solutions.

Company, that processes the data
Google Ireland Ltd
Gordon House, Barrow Street
Dublin 4
IE

Privacy Policy | Cookie disclaimer

Payment processor.

Purposes, for data processing
Function (Legitimate Interests (no opt-out possible) (GDPR 6.1.f))

Legal basis, for data processing
Legitimate Interests (no opt-out possible) (GDPR 6.1.f)

Payment processor.

Purposes, for data processing
Function (Legitimate Interests (no opt-out possible) (GDPR 6.1.f))

Legal basis, for data processing
Legitimate Interests (no opt-out possible) (GDPR 6.1.f)

Payment processor.

Purposes, for data processing
Function (Legitimate Interests (no opt-out possible) (GDPR 6.1.f))

Legal basis, for data processing
Legitimate Interests (no opt-out possible) (GDPR 6.1.f)

Payment processor.

Purposes, for data processing
Function (Legitimate Interests (no opt-out possible) (GDPR 6.1.f))

Legal basis, for data processing
Legitimate Interests (no opt-out possible) (GDPR 6.1.f)

Processing company
Apple Inc. One Apple Park Way, Cupertino, California, USA, 95014

Data Purposes
Authentication of the user

Technologies Used
Software module

Data Collected
Account data (e.g. Apple ID and associated account details), device information (e.g. device ID), contact data (such as name, e-mail address), usage data

Legal Basis
Our legitimate interest

Data Recipients
Apple Inc. (jointly responsible),Disclosure to third parties

Transfer to Third Countries
This service may forward the collected data to a different country. Please note that this service might transfer the data outside of the EU/EEA and to a country without the required data protection standards. If the data is transferred to the US, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. This can be for different reasons like storing or processing.
Transfer outside the EEA

Click here to read the privacy policy of the data processor

Processing company
Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland

Data Purposes
Authentication of the user

Technologies Used
Software module

Data Collected
Account data (e.g. Apple ID and associated account details), device information (e.g. device ID), contact data (such as name, e-mail address), usage data

Legal Basis
Our legitimate interest

Data Recipients
Google Ireland Ltd. (jointly responsible),Disclosure to third parties

Non-EU datatransfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

Click here to read the privacy policy of the data processor.

Processing company
Microsoft Ireland Operations Ltd, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland

Data Purposes
Authentication of the user

Technologies Used
Software module

Data Collected
Account data (e.g. Apple ID and associated account details), device information (e.g. device ID), contact data (such as name, e-mail address), usage data

Legal Basis
Our legitimate interest

Data Recipients
Microsoft Ireland Operations Ltd, (jointly responsible),Disclosure to third parties

Non-EU datatransfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

Click here to read the privacy policy of the data processor

These cookies are set by our advertising partners to provide behavioral advertising and re-marketing analytical data. They collect any type of browsing information necessary to create profiles and to understand user habits in order to develop an individual and specific advertising routine. The profile created regarding your browsing interest and behavior is used to customize the ads you see when you access other websites.

Google Ads is an online advertising platform that is developed by Google.

Company, that processes the data
Google Ireland Ltd
Gordon House, Barrow Street
Dublin 4
IE

Non-EU data transfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

Google Ads Remarketing:
This is a remarketing service. With Remarketing, the user can display ads to users of the website based on their interests on other websites within the Google Displaying Network (e.g. in Google Search or on YouTube). For this purpose, the users' interactions are analyzed, e.g. regarding the products and services a user is interested in. This enables the user to display targeted advertising to the user on other websites even after the visit to the website.

Company, that processes the data
Google Ireland Ltd
Gordon House, Barrow Street
Dublin 4
IE

Privacy | Cookie disclaimer

Non-EU data transfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

Non-EU data transfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

Microsoft Advertising is an online tracking and advertising platform that is developed by Microsoft.

Company, that processes the data
Microsoft Ireland Operations Ltd
One Microsoft Place, South County Business Park
Leopardstown, Dublin 18
IE

Privacy Policy | Cookie disclaimer

Non-EU data transfers
This vendor may transfer, store or process your personal data outside of the EEA/EU. These countries may not have the same data protection level and enforcement of your rights might be limited or not possible.

These cookies are set to provide quantitative measures of website visitors. Information collected with these cookies is used in operations to measure website or software KPIs, such as performance. With the usage of these cookies we are able to count visits and traffic sources to improve the performance of our site and application. If you do not allow these cookies, we will not know when you have visited our site.

Google Analytics is a web analytics service offered by Google that tracks and reports website traffic, currently as a platform inside the Google Marketing Platform brand.

Privacy Policy | Cookie Policy

Privacy | Company details | Cookie Policy